Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.calseta.com/llms.txt

Use this file to discover all available pages before exploring further.

The Calseta REST API provides programmatic access to alerts, enrichment, workflows, detection rules, context documents, and platform metrics.

Base URL

http://localhost:8000/v1/
All endpoints are versioned under /v1/. Replace localhost:8000 with your deployment URL in production.

Authentication

Request Format

  • Content-Type: application/json for all request bodies (except file uploads)
  • Timestamps: ISO 8601 with timezone (e.g., 2025-01-15T10:30:00Z)
  • IDs: UUIDs in all paths and responses

Response Format

Single Resource

{
  "data": {
    "uuid": "abc123-...",
    "title": "Example Alert",
    "severity": "High"
  },
  "meta": {}
}

List (Paginated)

Errors

Endpoint Groups

GroupBase PathDescription
Alerts/v1/alertsAlert CRUD, ingestion, indicators, findings, context, activity
Detection Rules/v1/detection-rulesDetection rule library
Context Documents/v1/context-documentsOrganizational knowledge
Workflows/v1/workflowsAutomation functions
Workflow Approvals/v1/workflow-approvalsHuman-in-the-loop approval
Enrichment/v1/enrichmentsOn-demand enrichment
Enrichment Providers/v1/enrichment-providersProvider configuration
Field Extractions/v1/enrichment-field-extractionsEnrichment field extraction mappings
Agents/v1/agentsAgent webhook registration
Source Integrations/v1/source-integrationsAlert source configuration
Metrics/v1/metricsPlatform metrics
API Keys/v1/api-keysKey management

Ingestion

Alert ingestion uses a separate path: POST /v1/ingest/{source_name}. This endpoint returns 202 Accepted within 200ms — all enrichment and dispatch happen asynchronously via the task queue.